Michael Mandrus
e8093cb11a
Config: Add [aws][external_id] to ini files ( #72026 )
...
add mention of aws external id to ini files
2023-07-20 10:37:41 -04:00
Jo
0ffd359801
Auth: Enforce role sync except if skip org role sync is enabled ( #70766 )
...
* enforce role sync except if skip org role sync is enabled
* move errors to errors file and set codes
* fix docs and defaults
* remove legacy parameter
* support fall through token-api in generic oauth
* fix error handling for generic_oauth
* Update pkg/login/social/generic_oauth.go
Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com>
* Update pkg/login/social/gitlab_oauth_test.go
Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com>
* Update pkg/login/social/gitlab_oauth_test.go
Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com>
---------
Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com>
2023-07-17 15:58:16 +02:00
Misi
dcf26564db
OAuth: Introduce user_refresh_token setting and make it default for the selected providers ( #71533 )
...
* First changes
* WIP docs
* Align current tests
* Add test for UseRefreshToken
* Update docs
* Fix
* Remove unnecessary AuthCodeURL from generic_oauth
* Change GitHub to disable use_refresh_token by default
2023-07-14 14:03:01 +02:00
Ieva
cb695cef8e
Auth: update GitHub OAuth documentation ( #70459 )
...
* github oauth doc improvements
* add skip_org_role_sync to config for github provider
* update links and section headings
* update the docs based on the first PR
* update references
2023-07-12 15:25:46 +02:00
Michael Mandrus
ff6d6659fb
Query: Fix concurrency handling for mixed datasource queries ( #70100 )
...
* split queries and merge responses
* increase concurrency again
* update unit test to verify the headers are merged
* fix lint issue
* fix race condition in unit test
* Fix function name and add a bit more documentation about how the func should be used
* update function call after rename
* check for duplicate header vals
* make concurrent query limit configurable
* Update conf/sample.ini
Co-authored-by: Sofia Papagiannaki <1632407+papagian@users.noreply.github.com>
---------
Co-authored-by: Sofia Papagiannaki <1632407+papagian@users.noreply.github.com>
2023-07-06 17:15:43 +03:00
Esteban Beltran
d618bc46d1
Plugins: Add config option to exclude specific plugins from frontend sandbox ( #70899 )
2023-07-05 11:16:56 +02:00
Eric Leijonmarck
e313db386a
Auth: adds missing default in [auth.azuread] skip_org_role_sync
config ( #70690 )
...
adds default false skip org role sync
2023-06-26 17:54:32 +03:00
Jo
11d196eb6e
Auth: Support google OIDC and group fetching ( #70140 )
...
* Auth: Update Google OAuth default configuration based on /.well-known/openid-configuration #69520
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>
* add id_token parsing
add legacy API distinction
use google auth oidc connectors
add group fetching support and tests
* Apply suggestions from code review
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
* implement review feedback
* indent docs
---------
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>
Co-authored-by: junya koyama <arukiidou@yahoo.co.jp>
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
2023-06-26 09:44:57 +02:00
George Robinson
7edbe72483
Alerting: Support concurrent queries for saving alert instances ( #70525 )
...
This commit adds support for concurrent queries when saving alert
instances to the database. This is an experimental feature in
response to some customers experiencing delays between rule evaluation
and sending alerts to Alertmanager, resulting in flapping. It is
disabled by default.
2023-06-23 11:36:07 +01:00
Jo
4821175d40
Auth: Add auth.azure_ad security improvements ( #912 )
...
* security improvements id_token
* add audience validation
* add allowOrganizations
* add allowOrganizations tests and documentation
* add log warn on no configuration
* anonymize tenant id
* Apply suggestions from code review
Co-authored-by: Misi <mgyongyosi@users.noreply.github.com>
* Update docs/sources/setup-grafana/configure-security/configure-authentication/azuread/index.md
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
* Update pkg/login/social/azuread_oauth_test.go
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
* Update pkg/login/social/azuread_oauth_test.go
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
* optimize key validation and add mising fields
* fix missing key_id
* lint
* Update docs/sources/setup-grafana/configure-security/configure-authentication/azuread/index.md
Co-authored-by: Misi <mgyongyosi@users.noreply.github.com>
* lint docs
---------
Co-authored-by: Misi <mgyongyosi@users.noreply.github.com>
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
2023-06-23 09:13:38 +02:00
Vardan Torosyan
87b127e073
Add and document option for enabling email lookup ( #913 )
...
* Docs: Document option for enabling email lookup
* Add the new config in the config files
* Apply suggestions from code review
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
* Don't capitalize identity providers
* Apply suggestions from code review
Co-authored-by: Jo <joao.guerreiro@grafana.com>
* Apply suggestions from code review
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
---------
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
Co-authored-by: Jo <joao.guerreiro@grafana.com>
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
2023-06-23 09:08:04 +02:00
Michael Mandrus
66d2214c3b
Config: Add configuration option to define custom user-facing general error message for certain error types ( #70023 )
...
---------
Co-authored-by: Summer Wollin <summer.wollin@grafana.com>
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
Co-authored-by: Arati R. <33031346+suntala@users.noreply.github.com>
2023-06-16 10:46:47 -05:00
Andres Martinez Gotor
7c1c196031
Plugins: Periodically update public signing key ( #70080 )
2023-06-16 11:20:30 +02:00
Ashley Harrison
b1d997d1e8
Navigation: Add navigation customization options to config documentation ( #70072 )
...
update config documentation to mention navigation customization options
2023-06-15 16:17:48 +01:00
Stephanie Hingtgen
936e62ca43
Secure socks proxy: update show_ui default in default.ini ( #69417 )
2023-06-02 07:23:05 -06:00
Stephanie Hingtgen
29a4e3d7da
Secure socks proxy: allow for UI to be disabled ( #69408 )
2023-06-01 12:58:51 -06:00
Ashley Harrison
778963849e
News: Expose config option to disable News feed ( #69365 )
...
* customize news feed
* remove url customisation
2023-06-01 13:35:05 +01:00
MichaelKo
e7e70dbac6
Chore: Adding "allowed_groups" Configuration Parameter to Generic OAuth Method ( #69025 )
...
* feat: add allowed_groups for Generic OAuth
* docs: add allowed_groups more docs for Generic OAuth
2023-05-30 11:07:04 +02:00
arukiidou
d208bf3345
Auth: Add tls_client_cert to OAuth section in defaults.ini. #64746 ( #68228 )
...
* Auth: Add tls_client_cert to defaults.ini #64746
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>
* Auth: Add tls_client_cert to docs #64746
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>
* Auth: Add more `tls_client_cert` for docs
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>
* Update docs/sources/setup-grafana/configure-security/configure-authentication/gitlab/index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* Revert "Update docs/sources/setup-grafana/configure-security/configure-authentication/gitlab/index.md"
This reverts commit f4f1fda7526bf4af05507bc0dc26e808687514eb.
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>
---------
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
2023-05-26 14:15:19 +02:00
Sergey Kostrukov
eafba8fa69
Azure: Configuration for user identity authentication in datasources (Experimental) ( #50277 )
...
* Configuration for user identity authentication
* Use token endpoint form Azure AD settings
* Documentation update
* Update Grafana Azure SDK
* Fix secret override
* Fix lint
* Fix doc wording
2023-05-15 18:00:54 +01:00
arukiidou
f79654feb3
Auth: Use PKCE by default (If OAuth provider supports PKCE) ( #68095 )
...
OAuth: change use_pkce = true to defaults.ini/sample.ini #68073
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>
2023-05-12 09:37:29 +02:00
Jean-Philippe Quéméner
8bb62a8316
Alerting: Add option for memberlist label ( #67982 )
2023-05-09 10:32:23 +02:00
arukiidou
a58de1f8d2
Chore: Add missing tls_skip_verify_insecure for GitLab Oauth ( #64649 )
...
fixes https://github.com/grafana/grafana/issues/64648
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>
2023-05-08 17:33:11 +02:00
venkatbvc
b9e53f628f
HTTP: Add TLS version configurability for Grafana server ( #67482 )
...
Co-authored-by: Rao B V Chalapathi <b_v_chalapathi.rao@nokia.com>
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
2023-05-08 17:11:36 +02:00
Jo
3644ea6556
ServiceAccounts: Add secret scan service docs ( #57926 )
...
* add secret scanning docs
* update docs
* fix merge
* add revoke to docs
* add revoke to docs
* typo fix
* Apply suggestions from code review
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* add step by step instructions
* Apply suggestions from code review
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* Apply suggestions from code review
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* prettier
* Update docs/sources/setup-grafana/configure-security/secret-scan.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* feedback
* Update docs/sources/setup-grafana/configure-security/secret-scan.md
* Update docs/sources/setup-grafana/configure-security/secret-scan.md
* Update docs/sources/setup-grafana/configure-security/secret-scan.md
Co-authored-by: Victor Cinaglia <victor@grafana.com>
---------
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
Co-authored-by: Victor Cinaglia <victor@grafana.com>
2023-05-04 10:36:51 +02:00
Domas
15d4169813
Frontend logging: Remove Sentry javascript agent support ( #67493 )
...
* remove Sentry
* fix sourcemap resolve
2023-05-02 12:10:56 +03:00
Andres Martinez Gotor
932136807b
Chore: Allow to force the download of the public key ( #67486 )
2023-04-28 16:00:48 +02:00
Carl Bergquist
692bb9ed1a
Instrumentation: Add support for instrumenting database queries ( #66022 )
...
Signed-off-by: bergquist <carl.bergquist@gmail.com>
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
2023-04-28 15:19:06 +02:00
Bruno
d4715a6f04
CSRF middleware: Add flag to skip login cookie check ( #66806 )
...
* CSRF middleware: add flag to skip login cookie check
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
---------
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
2023-04-24 10:11:08 -03:00
Jean-Philippe Quéméner
bc11a484ed
Alerting: Add support for running HA using Redis ( #65267 )
...
Co-authored-by: Steve Simpson <steve.simpson@grafana.com>
2023-04-19 17:05:26 +02:00
Kyle Cunningham
92d92187d9
SQL Datasources: Update Max Connection and Max Idle Connection Defaults to 100 and add auto mode ( #65834 )
...
* Update connection configuration for SQL datasources
* Working auto state for connection numbers
* Add migration
* Use defaults from constants file
* Remove dead code
* Add tests and restructure useMigrateDatabaseField
* Update function names
* Update docs
* Make sure we don't continually issue updates
* Update docs
* Use onOptionsChnage in ConnectionLimits
* Update docs
* Clean up docs
* Update migration
* Fix default values in docs
* Fix spacing issue
* Fix test
* Update default values for SQL connections
* Include consts
* Allow override for default SQL datasource connection parameters
* Fix linter errors
* Remove extra @ts-ignore
* Centralize logic for default values
* Remove debugging
* Remove unecessary function
* Update configuration docs
* minor suggested change
* Fix comment misspelling
* Remove unecessary default setting code
* Update docs to indicate that code was included for backport version
* Remove dead code
---------
Co-authored-by: lwandz13 <larissa.wandzura@grafana.com>
2023-04-17 11:44:05 +03:00
gotjosh
9f0d44d176
GRPC: Document GRPC flags to allow overriding env vars ( #66628 )
2023-04-15 14:01:34 +03:00
Ashley Harrison
4abe0249ba
Chore: Clean up old navigation ( #66287 )
...
* remove code outside of the topnav feature flag
* delete NavBar folder
* remove topnav toggle from backend
* restructure AppChrome folder
* fix utils mock
* fix applinks tests
* remove tests since they're covered in e2e
* fix 1 of the approotpage tests
* Fix another dashboardpage test
* remove reverse portalling + test for plugins using deprecated onNavChanged method
* kick drone
* handle correlations
2023-04-14 09:43:11 +01:00
Artur Wierzbicki
2136e680c4
Previews: remove dashboard previews backend ( #66176 )
...
* remove dashboard previews backend
* remove dashboard previews backend
* bring back the migration
* bring back the migration
* bring back the migration
2023-04-13 21:42:24 +04:00
Alexander Weaver
1791c6043f
Alerting: Document state history config options in default and sample configuration files ( #65748 )
...
* Document configuration options
* Improve documentation
2023-04-11 14:38:06 -05:00
Kristina
702ec59cc4
Add quota setting for correlations ( #65076 )
...
* Add quota setting for correlations
* Fix linter
2023-03-21 15:27:25 -05:00
Karl Persson
634955c3f2
OAuth: Add tls_skip_verify_insecure to defaults.ini ( #64679 )
...
OAuth: add tls_skip_verify_insecure to defaults.ini
2023-03-13 16:26:05 +01:00
Ashley Harrison
d61bcdf4ca
Chore: Pass signed user_hash
to Intercom via Rudderstack ( #63921 )
...
* move analytics identifiers to backend
* implement hash function
* grab secret from env
* expose and retrieve intercom secret from config
* concat email with appUrl to ensure uniqueness
* revert to just using email
* Revert "revert to just using email"
This reverts commit 8f10f9b1bc
.
* add docstring
2023-03-03 14:39:53 +00:00
Jan-Otto Kröpke
c323a7cb13
Login: Allow custom name and icon for social providers ( #63297 )
2023-03-03 09:17:43 +01:00
zhichli
3c218d742f
Datasources: Add user_agent header customization for outgoing HTTP requests ( #63769 )
2023-02-28 14:10:05 +01:00
Jo
7e97dbde65
LDAP: Allow setting minimum TLS version and accepted ciphers ( #63646 )
...
* update ldap library and use go module path
* add TLS min version and accepted min TLS version
* set default min ver to library default
* set default min ver to library default
* add cipher list to toml
* Update pkg/services/ldap/settings.go
Co-authored-by: Karl Persson <kalle.persson@grafana.com>
* Apply suggestions from code review
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* lint
---------
Co-authored-by: Karl Persson <kalle.persson@grafana.com>
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
2023-02-28 12:13:46 +01:00
Jo
af987ae636
SupportBundles: Add bundle encryption based on age ( #62501 )
...
* add bundle encryption based on age
* undo changes to grafana-data
* sort deps
* test bundle creation and encryption
* use whitespace separator
* add support bundle config documentation
* Update docs/sources/troubleshooting/support-bundles/index.md
* Apply suggestions from code review
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
* touch up docs
* extract encrypt
* Update docs/sources/troubleshooting/support-bundles/index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* Update docs/sources/troubleshooting/support-bundles/index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
---------
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
2023-02-24 09:24:44 -06:00
zsrv
5687d23b52
Docs: Disambiguate auto_assign_org_role configuration option descriptions ( #61827 )
2023-02-23 18:20:43 +00:00
George Robinson
005f5ca1df
Alerting: Fix confusing comment about screenshots in default.ini and docs ( #63346 )
2023-02-20 09:59:45 +00:00
Eric Leijonmarck
7019287f88
Auth: Add deprecation notice for oauth_skip_org_role_update_sync ( #62712 )
...
* add: deprecaation notice for overall setting
* add: deprecation notice for configuration files
* chore: update docs with deprecation notice
* refactor: change to note the new setting instead
* Update pkg/setting/setting.go
Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com>
* refactor: based on review comments
---------
Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com>
2023-02-07 15:28:40 +00:00
Carl Bergquist
2a29a07465
Plugins: Add optional logger for plugin requests sent to backend plugins ( #62981 )
...
Signed-off-by: bergquist <carl.bergquist@gmail.com>
2023-02-07 12:49:16 +01:00
Eric Leijonmarck
8ff19bd901
Auth: Add Generic oauth skip org role sync setting ( #62418 )
...
* add: generic oauth skip org role sync
* add: docs
* add: backend login skip sync
* fix: docs typo
* add: tests
* remove public key
* fix markdown for generic oauth
* add: generic oauth to the configuration
* refactor: change debug to warn
2023-02-01 16:27:53 +00:00
ismail simsek
91221bc436
Expressions: Fixes the issue showing expressions editor ( #62510 )
...
* Use suggested value for uid
* update the snapshot
* use __expr__
* replace all -100 with __expr__
* update snapshot
* more changes
* revert redundant change
* Use expr.DatasourceUID where it's possible
* generate files
2023-01-31 18:50:10 +01:00
Alex Moreno
7a465f42a6
Alerting: Allow pausing alerts from provisioning ( #62263 )
...
* Allow pausing alerts from provisioning
* Update swagger
* Add IsPaused to provision export endpoints
* Add pause field in sample.yml
* Add exception for reset state in first loop iteration of scheduler if rule is paused
* Update provision definition and swagger docs
* Fix provisioning export tests
* Suggestion: Simplify if condition
* Add more context to a comment
2023-01-30 16:29:05 +01:00
Eric Leijonmarck
a232e7ceca
Auth: Add skip_org_role_sync for Okta ( #62106 )
...
* WIP
* Update pkg/services/login/authinfo.go
* fix: merge
* change order to internal last
* adds: docs
* add: configuration for defaults and sample
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: Jo <joao.guerreiro@grafana.com>
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
---------
Co-authored-by: Jo <joao.guerreiro@grafana.com>
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
2023-01-30 10:54:14 +00:00